$ rpki-client -vvf rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa File: D57C98A88C0311EFAA53FF12C4F9AE02.roa (raw, json) Hash identifier: x3Si4KMD2wvo6rCmh6bPANGnveohQUAF1yIi2AXTiDA= Subject key identifier: AF:00:62:86:E8:C8:33:53:B5:59:EE:16:72:E8:79:9F:35:0B:19:1F Certificate issuer: /CN=A91E892A/serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Certificate serial: 192B Authority key identifier: 23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa Signing time: Thu 04 Sep 2025 16:55:22 +0000 ROA not before: Thu 04 Sep 2025 16:55:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 64231 IP address blocks: 103.99.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6443 (0x192b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E892A, serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Validity Not Before: Sep 4 16:55:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b9c47a-3dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:19:07:94:8d:b5:2e:2e:b1:27:eb:cb:f9: 23:90:43:6b:02:cd:b8:0a:76:ce:12:be:f4:cf:f4: 9f:56:fe:e4:a1:af:62:7f:7f:9c:c0:cf:c9:60:a0: cb:65:0f:a8:50:fc:97:37:4b:c0:5a:c7:94:17:b6: bd:06:54:c8:1b:0d:d4:f1:13:05:3a:d4:ac:d2:ad: 56:86:76:2f:92:58:20:d3:5e:b0:e0:1e:ad:43:75: 71:43:91:2d:e0:f7:f7:2a:ee:4c:2d:0f:dc:cb:b9: 31:67:8e:47:bf:d9:5e:ef:f4:76:6c:f2:da:fa:7b: 05:0a:00:2d:9d:25:bf:67:04:30:76:bf:fa:93:32: 41:45:be:cc:97:45:a8:f9:75:56:89:58:66:5c:1d: a1:69:03:9c:69:4a:b7:78:dd:b9:65:e5:35:ba:7e: a1:4f:ae:dc:64:0d:3c:3a:73:8e:74:b5:82:68:e1: 01:04:e2:be:68:5f:c6:9b:66:98:90:8c:68:73:f5: fa:da:eb:86:7f:8c:91:07:4a:86:dd:6e:36:09:e0: 7b:1d:4c:76:1f:9d:8d:06:b8:a1:c6:7a:6e:3d:6e: 18:8d:0f:9b:a8:e4:cd:de:4f:ce:02:d1:81:c5:e9: d7:4f:c1:b5:50:22:07:c8:49:b9:7e:7e:0a:35:4f: a8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:00:62:86:E8:C8:33:53:B5:59:EE:16:72:E8:79:9F:35:0B:19:1F X509v3 Authority Key Identifier: keyid:23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.42.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:c6:d8:b3:2e:88:1b:e1:77:8f:5c:05:af:38:9e:6c:65:a3: 4c:65:a9:16:35:ba:7f:4d:ef:df:b5:bd:65:31:00:9c:70:4b: 6d:80:b6:88:77:7f:78:85:7c:19:8d:19:89:29:aa:9a:c5:41: bd:19:87:e3:8b:e7:ba:3e:38:f4:a3:23:ae:9e:25:81:65:91: c3:c5:4b:cd:32:bd:9c:af:70:44:69:ed:0a:f2:d0:af:d4:c9: fb:0a:8a:43:4c:71:e4:ba:05:5c:8f:bf:ab:3e:48:7d:63:db: 8c:33:86:a4:ee:25:98:70:f1:6c:d8:a6:ba:54:6c:f1:85:12: 2c:85:81:ab:de:f1:e5:b5:15:b5:ec:d9:d9:f0:14:5b:21:83: da:e2:20:7e:53:29:d9:dc:f5:a5:14:b1:17:5b:d3:a4:fa:bd: 35:57:aa:03:28:03:79:91:12:97:29:1e:dd:50:9e:a6:b0:d9: a0:c1:e7:35:74:61:f7:32:f5:39:b6:1f:5f:76:8c:0d:40:30: 07:97:ff:33:70:83:c0:f9:c1:4f:f7:45:5e:3a:fd:f3:89:a0: 8b:5a:4a:47:f1:c8:f2:74:e5:4f:0c:73:25:1e:8f:2e:14:05: dd:23:6c:77:e8:c0:83:4f:65:52:fb:ac:03:28:4b:44:b2:18: 2b:f2:73:b7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MkExMTAvBgNVBAUTKDIzQjk2MDM3QUI4QUQyMzdFNjMyNkY3RUQwRjgxRTMx OEU4QTE0QUIwHhcNMjUwOTA0MTY1NTIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5YzQ3YS0zZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiYZB5SNtS4usSfry/kjkENrAs24CnbOEr70z/SfVv7koa9if3+cwM/JYKDL ZQ+oUPyXN0vAWseUF7a9BlTIGw3U8RMFOtSs0q1WhnYvklgg016w4B6tQ3VxQ5Et 4Pf3Ku5MLQ/cy7kxZ45Hv9le7/R2bPLa+nsFCgAtnSW/ZwQwdr/6kzJBRb7Ml0Wo +XVWiVhmXB2haQOcaUq3eN25ZeU1un6hT67cZA08OnOOdLWCaOEBBOK+aF/Gm2aY kIxoc/X62uuGf4yRB0qG3W42CeB7HUx2H52NBrihxnpuPW4YjQ+bqOTN3k/OAtGB xenXT8G1UCIHyEm5fn4KNU+o+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFK8AYobo yDNTtVnuFnLoeZ81CxkfMB8GA1UdIwQYMBaAFCO5YDeritI35jJvftD4HjGOihSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkyQS9GODEwRTlBNDg4 MTUxMUU3OEJGN0QxNEVDNEY5QUUwMi9JN2xnTjZ1SzBqZm1NbTktMFBnZU1ZNktG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k3bGdONnVLMGpmbU1tOS0wUGdlTVk2S0ZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MkEvRjgxMEU5QTQ4ODE1MTFFNzhCRjdEMTRFQzRGOUFFMDIvRDU3Qzk4QTg4 QzAzMTFFRkFBNTNGRjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYyowDQYJKoZIhvcNAQELBQADggEBAE7G2LMuiBvhd49c Ba84nmxlo0xlqRY1un9N79+1vWUxAJxwS22Atoh3f3iFfBmNGYkpqprFQb0Zh+OL 57o+OPSjI66eJYFlkcPFS80yvZyvcERp7Qry0K/UyfsKikNMceS6BVyPv6s+SH1j 24wzhqTuJZhw8WzYprpUbPGFEiyFgave8eW1FbXs2dnwFFshg9riIH5TKdnc9aUU sRdb06T6vTVXqgMoA3mREpcpHt1Qnqaw2aDB5zV0Yfcy9Tm2H192jA1AMAeX/zNw g8D5wU/3RV46/fOJoItaSkfxyPJ05U8McyUejy4UBd0jbHfowINPZVL7rAMoS0Sy GCvyc7c= -----END CERTIFICATE-----Generated at Fri Sep 19 08:52:20 2025 by rpki-client